mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
886 B
886 B
CVE-2007-5822
Description
Direct static code injection vulnerability in forum.php in Ben Ng Scribe 0.2 and earlier allows remote attackers to inject arbitrary PHP code into a certain file in regged/ via the username parameter in a Register action, possibly related to the register function in forumfunctions.php.
POC
Reference
- http://securityreason.com/securityalert/3339
- http://securityreason.com/securityalert/3339
- https://www.exploit-db.com/exploits/4596
- https://www.exploit-db.com/exploits/4596
Github
No PoCs found on GitHub currently.